/etc/init.d/swanctl do not load configuration

Hi, I'm configuring strongswan(swanctl ) from UCI file, and it do not load any configuration.
Any idea why?

/etc/config/ipsec

config ipsec
	option rtinstall_enabled '1'
	list interface 'wan'

config crypto_proposal 'esp_proposal'
	option dh_group 'modp2048'
	option encryption_algorithm 'aes256'
	option hash_algorithm 'sha256'

config crypto_proposal 'ike_proposal'
	option encryption_algorithm 'aes256'
	option dh_group 'modp2048'
	option hash_algorithm 'sha256'

config tunnel 'tun3'
	list crypto_proposal 'esp_proposal'
	option closeaction 'none'
	option dpdaction 'restart'
	option startaction 'trap'
	list local_subnet '192.168.4.0/24'
	list remote_subnet '192.168.1.0/24'

config tunnel 'tun2'
	option startaction 'trap'
	option closeaction 'none'
	option dpdaction 'restart'
	list local_subnet '192.168.4.0/24'
	list remote_subnet '192.168.2.0/24'
	list crypto_proposal 'esp_proposal'

config remote 'new2'
	option authentication_method 'psk'
	option fragmentation '1'
	option rekeytime '4h'
	option keyingretries '0'
	option mobike '0'
	option keyexchange 'ikev2'
	list crypto_proposal 'ike_proposal'
	option local_ip '10.10.3.1'
	list tunnel 'tun2'
	option gateway '10.10.2.1'

config remote 'tunnel'
	option local_ip '10.10.3.1'
	option gateway '10.10.2.1'
	option authentication_method 'psk'
	option fragmentation '1'
	option rekeytime '4h'
	option keyingretries '0'
	option mobike '0'
	list tunnel 'tun2'
	option keyexchange 'ikev2'
	list crypto_proposal 'ike_proposal'


/etc/init.d/swanctl  status
running

/etc/init.d/swanctl reload
no files found matching '/etc/swanctl/conf.d/*.conf'
no authorities found, 0 unloaded
no pools found, 0 unloaded
no connections found, 0 unloaded


What is the startaction trap ? Wiki mentions:

startaction| Action on initial configuration load (none, start, route)

Also the remote should have the enabled option.
Check also in logread for any other errors.

"trap" installs a trap policy which triggers the tunnel as soon as matching traffic has been detected.

logread:

uhttpd[2121]: no files found matching '/etc/swanctl/conf.d/*.conf'

Try with start in startaction.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.